Malware

About “MSIL/GameTool_AGen.R potentially unsafe” infection

Malware Removal

The MSIL/GameTool_AGen.R potentially unsafe is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/GameTool_AGen.R potentially unsafe virus can do?

  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • CAPE detected the shellcode get eip malware family

How to determine MSIL/GameTool_AGen.R potentially unsafe?



File Info:

name: 4B829C5C82EC696D3441.mlw
path: /opt/CAPEv2/storage/binaries/275ea89655aa6dd6e9fba59024f5d150d1afc273221cf5bca833bf691b2a8f7f
crc32: B1B77627
md5: 4b829c5c82ec696d344120bc7ea1fa87
sha1: 68cd549510c26f1e421fe92a888927de19ea7c10
sha256: 275ea89655aa6dd6e9fba59024f5d150d1afc273221cf5bca833bf691b2a8f7f
sha512: 0319a44a028e2b7410d292fe3c35ca5b76e9d94bf90aef4b4991a113030df979c6d4dffca39eecf082a53139acaca5da62227fd34c267f1067cd8c649527c55d
ssdeep: 196608:i+O2ihGpw4braPEuClP5ptjvs/keZWhej:iVjnGtjxeZW2
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1EED69E3279A8D072D103B231B86D7BE921EDEDAD5FB483C322887A5C59344D27D3A257
sha3_384: bd98041a2fd69baddb8cff166fb475ab9c40b1da1639cfcf6053621fa91972092dd0890968c842def590cd4abae9d7c7
ep_bytes: ff250020400000000000000000000000
timestamp: 2024-01-01 18:48:14


Version Info:

Translation: 0x0000 0x04b0
FileDescription: StateOfBattle
FileVersion: 1.0.0.0
InternalName: SOBLauncher.exe
LegalCopyright:  
OriginalFilename: SOBLauncher.exe
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

MSIL/GameTool_AGen.R potentially unsafe also known as:

BkavW32.Common.21504918
LionicTrojan.Win32.GameTool.4!c
AVGWin32:MalwareX-gen [Trj]
MicroWorld-eScanTrojan.GenericKD.72036571
FireEyeTrojan.GenericKD.72036571
SkyhighArtemis
ALYacTrojan.GenericKD.72036571
MalwarebytesRiskWare.GameHack
SangforTrojan.Win32.Gametool.Vj5j
K7AntiVirusUnwanted-Program ( 005965271 )
K7GWUnwanted-Program ( 005965271 )
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/GameTool_AGen.R potentially unsafe
McAfeeArtemis!4B829C5C82EC
BitDefenderTrojan.GenericKD.72036571
AvastWin32:MalwareX-gen [Trj]
SophosGeneric Reputation PUA (PUA)
VIPRETrojan.GenericKD.72036571
EmsisoftTrojan.GenericKD.72036571 (B)
IkarusPUA.MSIL.Gametool
Antiy-AVLRiskWare/MSIL.GameTool
MicrosoftTrojan:Win32/Wacatac.A!ml
ArcabitTrojan.Generic.D44B30DB
GDataTrojan.GenericKD.72036571
AhnLab-V3Trojan/Win.Generic.C5602857
MAXmalware (ai score=85)
Cylanceunsafe
RisingPUA.GameTool!8.148 (CLOUD)
MaxSecureTrojan.Malware.237525208.susgen
FortinetAdware/GameTool_AGen
DeepInstinctMALICIOUS
CrowdStrikewin/grayware_confidence_60% (D)
alibabacloudTrojan:MSIL/GameTool_AGen.R

How to remove MSIL/GameTool_AGen.R potentially unsafe?

MSIL/GameTool_AGen.R potentially unsafe removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment